-----Original Message-----
From: Guilherme G. Rafare / IN3 Technologies S.A. [mailto:[EMAIL PROTECTED]
Sent: Tuesday, September 07, 2004 5:28 PM
To: [EMAIL PROTECTED]
Subject: RE: Mobile Phones
Chuck,
Thanks a lot for your e-mail.
The problem is that Qualcomm has implemented SSL protocol but it is a black box meaning that we don’t have access to the source code, so far.
Our intention is to build up an open source implementation of TLS, first for BREW and right after for J2ME (Java). I have tried to find the Netscape docs you mention, but I couldn’t find them, unfortunately.
We are now trying to get info from books and I will order the one you mention, as soon as I find it.
If you remember anything that might be interesting, please let me know.
Regards
GR
-----Original Message-----
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]On Behalf Of Goehring, Chuck, RCI - San Diego
Sent: Tuesday, September 07, 2004 9:07 PM
To: [EMAIL PROTECTED]
Subject: RE: Mobile PhonesGuilherme,Sorry for the earlier post MS Outlook did not indicate your emailwas from the list. But I have here is what I would suggest. Others may have more info for you.Ok, I found out what BREW is. Since it is an operating system, you would need to build openssl for it like any other operating system. I don't know if it is supported so you will need to look at the code readme and docs of OpenSSL to see. If it is not supported, you will need to hunt for one, or port it yourself.Since Qualcom is pushing BREW, they may have a port of OpenSSL or some other implementation. That would save you the effort to build and/or port it.The source code will show you what ciphers are supported. The protocol (SSL & https) was documented on Netscape's site, but I can't find it anymore. The handshake process and other details of ssl were covered in documents at the Netscape web site somewhere. TLS is the newer name for the standardized version of ssl. The O'Reilly book on OpenSSL is pretty good. For the low level stuff, there is a book on TLS but I don't remember the exact name - search for tls on amazon.com.There is a lot of docs with OpenSSL and mod_ssl in the Apache 2 source distribution.Chuck-----Original Message-----
From: Guilherme G. Rafare / IN3 Technologies S.A. [mailto:[EMAIL PROTECTED]
Sent: Monday, September 06, 2004 6:44 PM
To: [EMAIL PROTECTED]
Subject: Mobile Phones
Importance: HighHi,
Sorry to trouble you.
We are planning to implement OpenSSL in one of wireless data projects for mobile phones, using BREW (mainly C/C++). Do you know where we can find a detailed message flow and protocol, including the use of the encryption algorithms in each piece?
We would really appreciate any input.
Thanks and regards.
GR
Um abraço // Best regards,
Guilherme G. Rafare
Diretor Gerente // Managing Director
IN3 Technologies S.A. http://www.in3.com.br
MadGam.com http://www.madgam.com
e-mail: [EMAIL PROTECTED]
ICQ: 163.046.989
MSN: [EMAIL PROTECTED]
Yahoo Msgr: guilhermerafare
Skype: guilhermerafare
===============================================================================================
As informações transmitidas nesta mensagem e nos seus arquivos anexos, bem como nas mensagens posteriores ou anteriores que podem compor esta seqüência de mensagens (em conjunto “Informações”) são privilegiadas e/ou confidenciais e para conhecimento exclusivo da empresa destinatária, suas afiliadas, seus funcionários e demais pessoas por ela autorizadas (em conjunto “Empresa”), estando regulada pelas leis aplicáveis e/ou por documentos de sigilo ou de confidencialidade em vigor entre a IN3 Technologies S/A (“IN3”) e a Empresa. São vedadas, quando não expressa e previamente autorizados por escrito pela IN3, o uso, a impressão, a divulgação ou a retransmissão das Informações a terceiros, estando o destinatário original, o agente facilitador, a Empresa e o receptor das Informações, sujeitos às penalidades e sanções legais aplicáveis. Caso você não esteja autorizado a receber esta mensagem ou a tenha recebido de forma não-autorizada ou não-intencional, solicitamos que você não leia, não copie, não imprima, não divulgue, não retransmita esta mensagem e não faça uso dos seus anexos, e destrua e apague imediatamente esta mensagem, seu conteúdo e os seus arquivos anexos, comunicando imediatamente o seu recebimento indevido ao seu remetente original ou para [EMAIL PROTECTED]. Comunicações eletrônicas não são seguras e sujeitas a alteração no seu conteúdo, portanto, a IN3 não se responsabiliza por qualquer dano causado, inclusive por vírus, na medida que a mesma trafegou por rede pública.===============================================================================================
Guilherme ,
There
is a Java "clean room implementation of the JCE 1.2.1"
at http://www.bouncycastle.org/. It
has source code and a non-restrictive license.
You
could make a lite system using pieces from OpenSSL. Don't know if it would
be easier than porting all of OpenSSL. It may depend on the tools for
BREW.
Chuck
- RE: Mobile Phones Goehring, Chuck, RCI - San Diego
- RE: Mobile Phones Guilherme G. Rafare / IN3 Technologies S.A.
- RE: Mobile Phones Goehring, Chuck, RCI - San Diego
- RE: Mobile Phones Guilherme G. Rafare / IN3 Technologies S.A.
- RE: Mobile Phones Goehring, Chuck, RCI - San Diego
- RE: Mobile Phones Guilherme G. Rafare / IN3 Technologies S.A.
- Re: Mobile Phones Sid Hegde
